package com.hqyj.javaSpringBoot.modules.account.service.impl;

import com.github.pagehelper.PageHelper;
import com.github.pagehelper.PageInfo;
import com.hqyj.javaSpringBoot.modules.account.dao.UserDao;
import com.hqyj.javaSpringBoot.modules.account.dao.UserRoleDao;
import com.hqyj.javaSpringBoot.modules.account.entity.User;
import com.hqyj.javaSpringBoot.modules.account.entity.UserRole;
import com.hqyj.javaSpringBoot.modules.account.service.UserService;
import com.hqyj.javaSpringBoot.modules.common.entity.Result;
import com.hqyj.javaSpringBoot.modules.common.entity.SearchBean;
import com.hqyj.javaSpringBoot.utils.MD5Util;
import com.hqyj.javaSpringBoot.utils.RedisUtils;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.subject.Subject;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;

import java.time.LocalDateTime;
import java.util.Collections;
import java.util.List;
import java.util.Optional;

@Service
public class UserServiceImpl implements UserService {

    @Autowired
    private UserDao userDao;

    @Autowired
    private UserRoleDao userRoleDao;

    @Autowired
    private RedisUtils redisUtils;

    @Override
    public User getUserById(int id) {
        return userDao.getUserById(id);
    }

    @Override
    public Result<User> login(User user) {
        int loginFailMaxConfig = 5;
        // 从数据库获取 错误登录次数
        String key = String.format("failed_login_count_%s", user.getUserName());
        int loginFailCount = redisUtils.get(key) == null ? 0 : (Integer) redisUtils.get(key);
        // 如果错误登录次数 > Max，直接返回错误信息
        if (loginFailCount >= loginFailMaxConfig) {
            return new Result<User>(Result.ResultCode.FAILED.code,
                    String.format("该账户连续登录错误 %s 次，账户锁定 30 s", loginFailCount));
        }

        // 获得 subject
        Subject subject = SecurityUtils.getSubject();

        // 包装令牌
        // MD5Util.getMD5(user.getPassword())
        UsernamePasswordToken token = new UsernamePasswordToken(
                user.getUserName(),
                MD5Util.getMD5(user.getPassword()));
        token.setRememberMe(user.getRememberMe());

        try {
            // 调用 subject login 方法，进行身份验证
            subject.login(token);
            // 调用 subject checkRoles 方法，进行资源授权
            subject.checkRoles();
            // 处理 session
            subject.getSession().setAttribute("user", subject.getPrincipal());

            // 登录成功，将错误次数归 0
            redisUtils.set(key, 0);

        } catch (Exception e){
            // redis 里错误的登录次数 +1
            loginFailCount += 1;
            redisUtils.set(key, loginFailCount);
            // 如果错误登录次数达到 Max,redis 设置该 key 的过期时间
            if (loginFailCount < loginFailMaxConfig) {
                return new Result<User>(Result.ResultCode.FAILED.code,
                        String.format("登录错误，还剩 %s 次", (loginFailMaxConfig - loginFailCount)));
            } else {
                // 返回错误消息
                redisUtils.expire(key, 30);
                return new Result<User>(Result.ResultCode.FAILED.code, String.format("该账户连续登录错误 %s 次，账户锁定 30 s", loginFailCount));

            }

        }
        // 返回 result
        return new Result<User>(Result.ResultCode.SUCCESS.code, "SUCCESS", (User)subject.getPrincipal());
    }

    @Override
    public void logout() {
        Subject subject = SecurityUtils.getSubject();
        subject.logout();
    }

    @Override
    @Transactional
    public Result<User> insertUser(User user) {
        // 1.查数据库用户或邮箱是否已经被注册
        List<User> users = Optional
                .ofNullable(userDao.getUserByUserNameOrEmail(user.getUserName(),user.getEmail()))
                .orElse(Collections.emptyList());
        if (users.size() > 0) {
            return new Result<User>(Result.ResultCode.FAILED.code, "UserName or Email is Existed");
        }

        // 2.新用户添加
        user.setCreateDate(LocalDateTime.now());
        user.setPassword(MD5Util.getMD5(user.getPassword()));
        userDao.insertUser(user);

        // 3.如果有添加角色，则在UserRole表中添加用户角色
        //     如果选了多个角色，则使用 .forEach 将这几个角色的 id 遍历出来，封装到 UserRole 的 roleId 中
        if (user.getRoles() != null) {
            user.getRoles().stream()
                    .forEach(item -> {userRoleDao.insertUserRole(new UserRole(user.getId(),item.getId()));});
        }
        return new Result<User>(Result.ResultCode.SUCCESS.code, "Insert Success.", user);
    }

    @Override
    public PageInfo<User> getUsersBySearchBean(SearchBean searchBean) {
        //初始化searchBean，如果前端里没有传当前页给默认值
        searchBean.initSearchBean();

        //开始进行分页
        PageHelper.startPage(searchBean.getCurrentPage(),searchBean.getPageSize());
        return new PageInfo<User>(Optional
                .ofNullable(userDao.getUsersBySearchVo(searchBean))
                .orElse(Collections.emptyList()));
    }

    @Override
    @Transactional
    public Result<User> updateUser(User user) {
        // 查询用户名和邮箱是否存在或是否有改动
        List<User> users = Optional
                .ofNullable(userDao.getUserByUserNameOrEmail(user.getUserName(), user.getEmail()))
                .orElse(Collections.emptyList());

        // 如果此用户名或邮箱已存在且不是本人 id，则提示已被占用
        // ** 标记：item -> item.getId() != user.getId() 有疑惑 **
        if (users.stream().filter(item -> item.getId() != user.getId()).count() > 0) {
            return new Result<User>(Result.ResultCode.FAILED.code, "User Name or email is repeat.");
        }

        // 修改内容无被占用情况，开始更新信息
        userDao.updateUser(user);

        // 角色信息的修改
        if (user.getRoles() != null && !user.getRoles().isEmpty()) {
            userRoleDao.deleteUserRoleByUserId(user.getId());
            user.getRoles().stream()
                    .forEach(item -> {userRoleDao.insertUserRole(new UserRole(user.getId(),item.getId()));});
        }
        return new Result<User>(Result.ResultCode.SUCCESS.code, "Update Success.", user);
    }

    @Override
    public Result<Object> deleteUserById(int id) {
        userDao.deleteUserById(id);
        userRoleDao.deleteUserRoleByUserId(id);
        return new Result<Object>(Result.ResultCode.SUCCESS.code, "Delete Success.");
    }

    @Override
    public User getUserByUserName(String userName) {
        return userDao.getUserByUserName(userName);
    }

    @Override
    public List<User> getUsersByKeyWord(String keyWord) {
        SearchBean searchBean = new SearchBean();
        searchBean.setKeyword(keyWord);
        searchBean.initSearchBean();
        return Optional.ofNullable(userDao.getUsersBySearchVo(searchBean)).orElse(Collections.emptyList());
    }
}
